2 matches found
CVE-2022-23952
In Keylime before 6.3.0, current keylime installer installs the keylime.conf file, which can contain sensitive data, as world-readable...
CVE-2022-23952
CVE-2022-23952 affects Keylime before version 6.3.0, where the installer writes the keylime.conf file with world-readable permissions, potentially exposing sensitive data contained in that config. The root cause is improper file permissions during installation, as described across multiple adviso...